defuse / gas-obfuscationLinks
Extremely simple but inefficient x86-64 assembly obfuscation.
☆38Updated 9 years ago
Alternatives and similar repositories for gas-obfuscation
Users that are interested in gas-obfuscation are comparing it to the libraries listed below
Sorting:
- Simple proof of concept code for injecting libraries on 64bit processes from a 32bit process☆96Updated 6 years ago
- Adding exceptions to Microsoft's Control Flow Guard (CFG)☆57Updated 9 years ago
- Windows 10 UAC bypass PoC using LaunchInfSection☆35Updated 7 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆22Updated 7 years ago
- C++☆80Updated 9 years ago
- ☆48Updated 5 years ago
- Bypass for the hardening against usage of tagWnd as a kernel read/write primitive☆32Updated 8 years ago
- A simple tool to view important DLL Characteristics and change DEP and ASLR☆44Updated 6 years ago
- ☆34Updated 8 years ago
- The Minimalistic x86/x64 API Hooking Library for Windows☆32Updated 7 years ago
- PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls☆39Updated 9 years ago
- drvtriks kernel driver for Windows 7 SP1 and 8.1 x64, that tricks around in your system.☆33Updated 7 years ago
- exploit termdd.sys(support kb4499175)☆60Updated 6 years ago
- User-mode hook bypassing method☆33Updated 9 years ago
- ☆17Updated 5 years ago
- Analyze and attack windows applications using dll hijacking vulnerabilities☆59Updated 6 years ago
- PoC for detecting and dumping process hollowing code injection☆52Updated 6 years ago
- Takes a Windbg dumped structure (using the 'dt' command) and formats it into a C structure☆36Updated last year
- Hidden kernel mode code execution for bypassing modern anti-rootkits.☆85Updated 14 years ago
- This is a simple driver with x64 inline assembly☆57Updated 5 years ago
- A tool to help malware analysts tell that the sample is injecting code into other process.☆78Updated 10 years ago
- ☆81Updated 7 years ago
- Simple 32/64-bit PEs loader.☆138Updated 6 years ago
- a C/C++ shellcode compiler based on llvm/clang☆38Updated 9 years ago
- Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.☆66Updated 3 years ago
- DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10☆53Updated last year
- An example of how x64 kernel shellcode can dynamically find and use APIs☆107Updated 5 years ago
- A process overwriting its own PEB to make an illusion that it has been loaded from a different path.☆99Updated 4 years ago
- A collection of anti disassembly techniques☆19Updated 8 years ago
- Call 32bit NtDLL API directly from WoW64 Layer☆60Updated 4 years ago